There is an injection vulnerability in jeecg boot versions 3.0.0 to 3.5.3 due to lax character filtering, which allows attackers to execute arbitrary code on components through specially crafted HTTP requests.
The vulnerability consists of overly liberal filtering of special characters in input data transmitted via HTTP. The attacker sends a specially crafted HTTP request containing a malicious payload that is not properly sanitized by the application. As a result, the payload reaches the code execution component, resulting in execution of arbitrary instructions on the server side (RCE).
An attacker can remotely and without authentication execute arbitrary code on the server with application privileges, which may lead to complete system compromise, data breach, and violation of service integrity and availability.
Apply patches available from the vendor according to the references. Immediate update of Jeecg Boot to a version higher than 3.5.3 is recommended. Until the patch is implemented, it is recommended to restrict application access exclusively to trusted networks or IP addresses and monitor logs for suspicious HTTP requests.
Jeecg Boot in versions 3.0.0 to 3.5.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HJeecg Boot
APPJeecg3.0 – 3.5.3
Related vulnerabilities
Command injection w Jeecg Boot — zdalne wykonanie kodu przez /jmreport/show
SQL Injection w JeecgBoot przez endpoint getTotalData
SQL Injection w Jeecg Boot — eskalacja uprawnień i wyciek danych
SQL Injection w Jeecg Boot — eskalacja uprawnień i wyciek danych
RCE poprzez SSTI injection w Jeecg Boot — komponent /jmreport/loadTableData